Sujet Précédent Sujet Suivant

Fenetre intempestive http://www.xn--i-7gn.com

Fermé
jalilouz - 14 déc. 2011 à 13:19
 jalilouz - 16 déc. 2011 à 18:42
Bonjour,





lorsque j'ouvre une page internet que ce soit sous explorer ou sous mozilla (windows XP) j ai des fenetres intempestives http://www.xn--i-7gn.com/%C3%AAd%C6%92%C3%AA%C3%80 avec ecrit cela j'ai scanné avec Antivir aucun virus j ai passer cleaner, spybot et malware mais ces fenetres sont toujours présentes...je suis nulle en informatique
qui pourrez m'aider? je vous remercie

21 réponses

  • 1
  • 2
Réponse 1 / 21
Fish66 Messages postés 17505 Date d'inscription dimanche 24 juillet 2011 Statut Contributeur sécurité Dernière intervention 16 juin 2021 1 318
14 déc. 2011 à 13:49
Salut,

Nous allons effectuer un diagnostic de ton PC:
*Télécharge ZHPDiag sur ton bureau :

https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html

* Laisse toi guider lors de l'installation,coche "Ajouter une icône sur le bureau" et décoche la case "Exécuter ZHPDiag"

/!\Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »

* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur un des sites ci dessous, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum : http://www.cijoint.fr/
Si indisponible, tu peux essayer avec l'un de ces liens:
http://dl.free.fr
http://ww38.toofiles.com/fr/documents-upload.html
https://www.terafiles.net/
https://www.casimages.com/
http://pjjoint.malekal.com/

* Tuto zhpdiag :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html

Hébergement de rapport sur cijoint.fr/

Rend toi sur ce site : http://www.cijoint.fr/
Clique sur Choisissez un fichier
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme : http://www.cijoint.fr/cjlink.php?file=cj44123/cijSKAP5fU.txt
est ajouté dans la page. Copie ce lien dans ta réponse.
============================================
Aide : >>> hébergement ICI <<<

@+
0
Réponse 2 / 21
jalilouz
14 déc. 2011 à 15:05
je vous remercie j ai fait un diagnostic le pb je n arrive pas a l héberger ( sur aucun lien donné) lorsque je vais chercher mon fichier sur le bureau et que j'envoi pour avoir le lien ca m "ouvre une page d'erreur
comment faire?
0
Réponse 3 / 21
Fish66 Messages postés 17505 Date d'inscription dimanche 24 juillet 2011 Statut Contributeur sécurité Dernière intervention 16 juin 2021 1 318
14 déc. 2011 à 15:41
Re,
1/
Télécharge Reload_TDSSKiller

* Lance le

* choisis : lancer le nettoyage

* l'outil va automatiquement télécharger la derniere version puis

* TDSSKiller va s'ouvrir , clique sur "Start Scan"

Clique ici pour l'aide en image
- Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
- Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
- Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
- Si Suspicious file est indiqué, laisse l''option cochée sur Skip
- une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer

sinon , ferme tdssKiller et le rapport s'affichera sur le bureau

* Copie/Colle son contenu dans ta prochaine réponse

2/ Ensuite tu essais d'envoyer le rapport de nouveau

@+


0
Réponse 4 / 21
jalilouz
14 déc. 2011 à 16:22
16:18:37.0981 2720 TDSS rootkit removing tool 2.6.23.0 Dec 13 2011 10:39:31
16:18:38.0027 2720 ============================================================
16:18:38.0027 2720 Current date / time: 2011/12/14 16:18:38.0027
16:18:38.0027 2720 SystemInfo:
16:18:38.0027 2720
16:18:38.0027 2720 OS Version: 5.1.2600 ServicePack: 2.0
16:18:38.0027 2720 Product type: Workstation
16:18:38.0027 2720 ComputerName: JULIE-QZFCRDUV2
16:18:38.0027 2720 UserName: julie
16:18:38.0027 2720 Windows directory: C:\WINDOWS
16:18:38.0027 2720 System windows directory: C:\WINDOWS
16:18:38.0027 2720 Processor architecture: Intel x86
16:18:38.0027 2720 Number of processors: 1
16:18:38.0027 2720 Page size: 0x1000
16:18:38.0027 2720 Boot type: Normal boot
16:18:38.0027 2720 ============================================================
16:18:39.0637 2720 Initialize success
16:20:04.0824 2700 ============================================================
16:20:04.0824 2700 Scan started
16:20:04.0824 2700 Mode: Manual;
16:20:04.0824 2700 ============================================================
16:20:06.0309 2700 Abiosdsk - ok
16:20:06.0371 2700 abp480n5 - ok
16:20:06.0449 2700 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:20:06.0465 2700 ACPI - ok
16:20:06.0574 2700 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
16:20:06.0574 2700 ACPIEC - ok
16:20:06.0684 2700 adpu160m - ok
16:20:06.0793 2700 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
16:20:06.0793 2700 aec - ok
16:20:06.0918 2700 AFD (5ac495f4cb807b2b98ad2ad591e6d92e) C:\WINDOWS\System32\drivers\afd.sys
16:20:06.0934 2700 AFD - ok
16:20:06.0996 2700 AFS2K (b34b1ab0a7690a0e2301fec6d17b2fc1) C:\WINDOWS\system32\drivers\AFS2K.sys
16:20:06.0996 2700 AFS2K - ok
16:20:07.0168 2700 AgereSoftModem (593aefc67283d409f34cc1245d00a509) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
16:20:07.0215 2700 AgereSoftModem - ok
16:20:07.0309 2700 Aha154x - ok
16:20:07.0356 2700 aic78u2 - ok
16:20:07.0434 2700 aic78xx - ok
16:20:07.0527 2700 alcan5ln (e8a3f72f644c0b57f8ab894d04b289d7) C:\WINDOWS\system32\DRIVERS\alcan5ln.sys
16:20:07.0527 2700 alcan5ln - ok
16:20:07.0652 2700 alcaudsl (4c9577888c53243e2991456f510488a1) C:\WINDOWS\system32\DRIVERS\alcaudsl.sys
16:20:07.0668 2700 alcaudsl - ok
16:20:07.0762 2700 AliIde - ok
16:20:07.0856 2700 AmdK7 (c0f59933070392e662b3c2bb2be77955) C:\WINDOWS\system32\DRIVERS\amdk7.sys
16:20:07.0856 2700 AmdK7 - ok
16:20:07.0918 2700 amsint - ok
16:20:08.0059 2700 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
16:20:08.0059 2700 Arp1394 - ok
16:20:08.0168 2700 asc - ok
16:20:08.0199 2700 asc3350p - ok
16:20:08.0262 2700 asc3550 - ok
16:20:08.0402 2700 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:20:08.0402 2700 AsyncMac - ok
16:20:08.0496 2700 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
16:20:08.0496 2700 atapi - ok
16:20:08.0527 2700 Atdisk - ok
16:20:08.0652 2700 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:20:08.0652 2700 Atmarpc - ok
16:20:08.0777 2700 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
16:20:08.0793 2700 audstub - ok
16:20:08.0856 2700 avgio (afa456a6210abe5798561a5758517340) C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys
16:20:08.0856 2700 avgio - ok
16:20:08.0918 2700 avgntflt (906f73c4f6b8ba5daabc41a1f04cecfe) C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys
16:20:08.0918 2700 avgntflt - ok
16:20:09.0059 2700 avipbb (bdb37b3b217f5181a5bc129c50844f98) C:\WINDOWS\system32\DRIVERS\avipbb.sys
16:20:09.0059 2700 avipbb - ok
16:20:09.0152 2700 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
16:20:09.0152 2700 Beep - ok
16:20:09.0309 2700 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
16:20:09.0309 2700 cbidf2k - ok
16:20:09.0402 2700 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
16:20:09.0418 2700 CCDECODE - ok
16:20:09.0465 2700 cd20xrnt - ok
16:20:09.0606 2700 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
16:20:09.0606 2700 Cdaudio - ok
16:20:09.0684 2700 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
16:20:09.0684 2700 Cdfs - ok
16:20:09.0777 2700 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:20:09.0777 2700 Cdrom - ok
16:20:09.0824 2700 Changer - ok
16:20:09.0981 2700 CmdIde - ok
16:20:10.0059 2700 Cpqarray - ok
16:20:10.0152 2700 dac2w2k - ok
16:20:10.0199 2700 dac960nt - ok
16:20:10.0277 2700 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
16:20:10.0277 2700 Disk - ok
16:20:10.0434 2700 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys
16:20:10.0465 2700 dmboot - ok
16:20:10.0621 2700 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys
16:20:10.0637 2700 dmio - ok
16:20:10.0684 2700 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
16:20:10.0684 2700 dmload - ok
16:20:10.0824 2700 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
16:20:10.0824 2700 DMusic - ok
16:20:10.0934 2700 dpti2o - ok
16:20:11.0027 2700 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
16:20:11.0027 2700 drmkaud - ok
16:20:11.0199 2700 dtscsi (6461e57bb51a848aae26f52427b7cf9e) C:\WINDOWS\System32\Drivers\dtscsi.sys
16:20:11.0199 2700 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\dtscsi.sys. md5: 6461e57bb51a848aae26f52427b7cf9e
16:20:11.0215 2700 dtscsi ( LockedFile.Multi.Generic ) - warning
16:20:11.0215 2700 dtscsi - detected LockedFile.Multi.Generic (1)
16:20:11.0277 2700 ejlysu - ok
16:20:11.0449 2700 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
16:20:11.0449 2700 Fastfat - ok
16:20:11.0606 2700 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
16:20:11.0606 2700 Fdc - ok
16:20:11.0668 2700 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
16:20:11.0668 2700 FETNDIS - ok
16:20:11.0824 2700 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys
16:20:11.0824 2700 Fips - ok
16:20:11.0902 2700 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:20:11.0902 2700 Flpydisk - ok
16:20:11.0996 2700 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\drivers\fltmgr.sys
16:20:12.0012 2700 FltMgr - ok
16:20:12.0231 2700 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:20:12.0231 2700 Fs_Rec - ok
16:20:12.0309 2700 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:20:12.0324 2700 Ftdisk - ok
16:20:12.0449 2700 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
16:20:12.0449 2700 GEARAspiWDM - ok
16:20:12.0527 2700 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:20:12.0527 2700 Gpc - ok
16:20:12.0684 2700 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:20:12.0684 2700 HidUsb - ok
16:20:12.0762 2700 hpn - ok
16:20:12.0824 2700 hpt3xx - ok
16:20:12.0887 2700 HPZid412 (863cc3a82c63c9f60acf2e85d5310620) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
16:20:12.0887 2700 HPZid412 - ok
16:20:12.0996 2700 HPZipr12 (08cb72e95dd75b61f2966b311d0e4366) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
16:20:12.0996 2700 HPZipr12 - ok
16:20:13.0074 2700 HPZius12 (ca990306ed4ef732af9695bff24fc96f) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
16:20:13.0090 2700 HPZius12 - ok
16:20:13.0199 2700 HTTP (cb77bb47e67e84deb17ba29632501730) C:\WINDOWS\system32\Drivers\HTTP.sys
16:20:13.0215 2700 HTTP - ok
16:20:13.0293 2700 i2omgmt - ok
16:20:13.0340 2700 i2omp - ok
16:20:13.0402 2700 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:20:13.0418 2700 i8042prt - ok
16:20:13.0559 2700 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
16:20:13.0574 2700 Imapi - ok
16:20:13.0668 2700 ini910u - ok
16:20:13.0731 2700 IntelIde - ok
16:20:13.0856 2700 ip6fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\drivers\ip6fw.sys
16:20:13.0856 2700 ip6fw - ok
16:20:13.0965 2700 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:20:13.0965 2700 IpFilterDriver - ok
16:20:14.0090 2700 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:20:14.0090 2700 IpInIp - ok
16:20:14.0231 2700 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:20:14.0231 2700 IpNat - ok
16:20:14.0387 2700 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:20:14.0387 2700 IPSec - ok
16:20:14.0449 2700 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
16:20:14.0449 2700 IRENUM - ok
16:20:14.0637 2700 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:20:14.0637 2700 isapnp - ok
16:20:14.0746 2700 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:20:14.0746 2700 Kbdclass - ok
16:20:14.0840 2700 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
16:20:14.0840 2700 kmixer - ok
16:20:14.0902 2700 KSecDD (eb7ffe87fd367ea8fca0506f74a87fbb) C:\WINDOWS\system32\drivers\KSecDD.sys
16:20:14.0902 2700 KSecDD - ok
16:20:15.0012 2700 lbrtfdc - ok
16:20:15.0137 2700 LVUSBSta (82bc937f40b644ed7f04d81f138a0322) C:\WINDOWS\system32\drivers\lvusbsta.sys
16:20:15.0137 2700 LVUSBSta - ok
16:20:15.0231 2700 MBAMSwissArmy - ok
16:20:15.0293 2700 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
16:20:15.0309 2700 mnmdd - ok
16:20:15.0449 2700 Modem (5ac7e16f5b40a6da14b5f2b3ada4693e) C:\WINDOWS\system32\drivers\Modem.sys
16:20:15.0449 2700 Modem - ok
16:20:15.0496 2700 Mouclass (7d4f19411bd941e1d432a99e24230386) C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:20:15.0496 2700 Mouclass - ok
16:20:15.0606 2700 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:20:15.0621 2700 mouhid - ok
16:20:15.0746 2700 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
16:20:15.0746 2700 MountMgr - ok
16:20:15.0793 2700 mraid35x - ok
16:20:15.0887 2700 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:20:15.0902 2700 MRxDAV - ok
16:20:16.0012 2700 MRxSmb (025af03ce51645c62f3b6907a7e2be5e) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:20:16.0027 2700 MRxSmb - ok
16:20:16.0184 2700 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
16:20:16.0184 2700 Msfs - ok
16:20:16.0340 2700 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:20:16.0340 2700 MSKSSRV - ok
16:20:16.0434 2700 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:20:16.0434 2700 MSPCLOCK - ok
16:20:16.0668 2700 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
16:20:16.0668 2700 MSPQM - ok
16:20:16.0934 2700 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:20:16.0949 2700 mssmbios - ok
16:20:17.0012 2700 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
16:20:17.0027 2700 MSTEE - ok
16:20:17.0168 2700 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
16:20:17.0168 2700 Mup - ok
16:20:17.0277 2700 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
16:20:17.0293 2700 NABTSFEC - ok
16:20:17.0434 2700 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
16:20:17.0434 2700 NDIS - ok
16:20:17.0512 2700 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
16:20:17.0512 2700 NdisIP - ok
16:20:17.0574 2700 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:20:17.0590 2700 NdisTapi - ok
16:20:17.0668 2700 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:20:17.0668 2700 Ndisuio - ok
16:20:17.0731 2700 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:20:17.0731 2700 NdisWan - ok
16:20:17.0856 2700 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
16:20:17.0856 2700 NDProxy - ok
16:20:17.0949 2700 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
16:20:17.0949 2700 NetBIOS - ok
16:20:18.0043 2700 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
16:20:18.0043 2700 NetBT - ok
16:20:18.0184 2700 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
16:20:18.0184 2700 NIC1394 - ok
16:20:18.0324 2700 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
16:20:18.0324 2700 Npfs - ok
16:20:18.0434 2700 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
16:20:18.0449 2700 Ntfs - ok
16:20:18.0590 2700 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
16:20:18.0590 2700 Null - ok
16:20:18.0684 2700 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:20:18.0684 2700 NwlnkFlt - ok
16:20:18.0777 2700 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:20:18.0793 2700 NwlnkFwd - ok
16:20:18.0887 2700 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
16:20:18.0902 2700 ohci1394 - ok
16:20:18.0965 2700 Parport (318696359ac7df48d1e51974ec527dd2) C:\WINDOWS\system32\DRIVERS\parport.sys
16:20:18.0965 2700 Parport - ok
16:20:19.0152 2700 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
16:20:19.0152 2700 PartMgr - ok
16:20:19.0356 2700 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
16:20:19.0356 2700 ParVdm - ok
16:20:19.0512 2700 PCI (7c5da5c1ed801ad8b0309d5514f0b75e) C:\WINDOWS\system32\DRIVERS\pci.sys
16:20:19.0527 2700 PCI - ok
16:20:19.0574 2700 PCIDump - ok
16:20:19.0715 2700 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
16:20:19.0715 2700 PCIIde - ok
16:20:19.0902 2700 Pcmcia (641da274e163617ea7a33506bc6da8e3) C:\WINDOWS\system32\drivers\Pcmcia.sys
16:20:19.0902 2700 Pcmcia - ok
16:20:19.0949 2700 PDCOMP - ok
16:20:20.0059 2700 PDFRAME - ok
16:20:20.0090 2700 PDRELI - ok
16:20:20.0106 2700 PDRFRAME - ok
16:20:20.0184 2700 pepifilter (ad70e30a2e7ea1bde8c42a4f50feaeda) C:\WINDOWS\system32\DRIVERS\lv302af.sys
16:20:20.0184 2700 pepifilter - ok
16:20:20.0262 2700 perc2 - ok
16:20:20.0293 2700 perc2hib - ok
16:20:20.0418 2700 PID_08A0 (a614ea2995ced201217a58e18a7474ad) C:\WINDOWS\system32\DRIVERS\LV302AV.SYS
16:20:20.0465 2700 PID_08A0 - ok
16:20:20.0606 2700 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:20:20.0606 2700 PptpMiniport - ok
16:20:20.0699 2700 Processor (f480712b761e538bc8e44ede60f3a3c3) C:\WINDOWS\system32\DRIVERS\processr.sys
16:20:20.0699 2700 Processor - ok
16:20:20.0840 2700 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
16:20:20.0840 2700 PSched - ok
16:20:20.0902 2700 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:20:20.0902 2700 Ptilink - ok
16:20:21.0043 2700 PxHelp20 (81088114178112618b1c414a65e50f7c) C:\WINDOWS\system32\Drivers\PxHelp20.sys
16:20:21.0059 2700 PxHelp20 - ok
16:20:21.0137 2700 ql1080 - ok
16:20:21.0184 2700 Ql10wnt - ok
16:20:21.0246 2700 ql12160 - ok
16:20:21.0340 2700 ql1240 - ok
16:20:21.0371 2700 ql1280 - ok
16:20:21.0434 2700 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:20:21.0434 2700 RasAcd - ok
16:20:21.0606 2700 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:20:21.0606 2700 Rasl2tp - ok
16:20:21.0746 2700 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:20:21.0762 2700 RasPppoe - ok
16:20:21.0824 2700 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
16:20:21.0824 2700 Raspti - ok
16:20:21.0965 2700 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:20:21.0965 2700 Rdbss - ok
16:20:22.0106 2700 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:20:22.0106 2700 RDPCDD - ok
16:20:22.0449 2700 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:20:22.0481 2700 rdpdr - ok
16:20:22.0762 2700 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
16:20:22.0856 2700 RDPWD - ok
16:20:23.0168 2700 redbook (2cc30b68dd62b73d444a41322cd7fc4c) C:\WINDOWS\system32\DRIVERS\redbook.sys
16:20:23.0184 2700 redbook - ok
16:20:23.0590 2700 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:20:23.0668 2700 Secdrv - ok
16:20:24.0027 2700 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
16:20:24.0043 2700 serenum - ok
16:20:24.0387 2700 Serial (653201755ca96ab4aaa4131daf6da356) C:\WINDOWS\system32\DRIVERS\serial.sys
16:20:24.0402 2700 Serial - ok
16:20:24.0793 2700 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
16:20:24.0793 2700 Sfloppy - ok
16:20:25.0027 2700 Simbad - ok
16:20:25.0371 2700 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
16:20:25.0371 2700 SLIP - ok
16:20:25.0621 2700 Sparrow - ok
16:20:25.0715 2700 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
16:20:25.0715 2700 splitter - ok
16:20:25.0887 2700 sptd (3ec8c68408ff6ab09f25abb02154f2c7) C:\WINDOWS\system32\Drivers\sptd.sys
16:20:25.0887 2700 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 3ec8c68408ff6ab09f25abb02154f2c7
16:20:25.0887 2700 sptd ( LockedFile.Multi.Generic ) - warning
16:20:25.0887 2700 sptd - detected LockedFile.Multi.Generic (1)
16:20:25.0949 2700 sr (b52181023b827acda36c1b76751ebffd) C:\WINDOWS\system32\DRIVERS\sr.sys
16:20:25.0965 2700 sr - ok
16:20:26.0106 2700 srescan (bda0ecc7cba1d3b9fd7ff2881bf9b463) C:\WINDOWS\system32\ZoneLabs\srescan.sys
16:20:26.0106 2700 srescan - ok
16:20:26.0262 2700 Srv (ea554a3ffc3f536fe8320eb38f5e4843) C:\WINDOWS\system32\DRIVERS\srv.sys
16:20:26.0293 2700 Srv - ok
16:20:26.0449 2700 ssmdrv (3d2829fde1c52fc64da5413889ce4dee) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
16:20:26.0449 2700 ssmdrv - ok
16:20:26.0543 2700 ssm_bus (df5c19f053eff7f8ba25d73aea899656) C:\WINDOWS\system32\DRIVERS\ssm_bus.sys
16:20:26.0543 2700 ssm_bus - ok
16:20:26.0637 2700 ssm_mdfl (5347169fa449eabc4d0728ae39fab926) C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys
16:20:26.0637 2700 ssm_mdfl - ok
16:20:26.0793 2700 ssm_mdm (7aae23dd105eed15c4f45fc269fa42a9) C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys
16:20:26.0809 2700 ssm_mdm - ok
16:20:26.0887 2700 ss_bus (bd15182e9d2d3fabc1d1313badbd2415) C:\WINDOWS\system32\DRIVERS\ss_bus.sys
16:20:26.0902 2700 ss_bus - ok
16:20:27.0012 2700 ss_mdfl (67d1144f249a3c5e03ebd7a2304dee11) C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys
16:20:27.0012 2700 ss_mdfl - ok
16:20:27.0121 2700 ss_mdm (954b7ce2d54c703d6a8471d6b05a5e13) C:\WINDOWS\system32\DRIVERS\ss_mdm.sys
16:20:27.0121 2700 ss_mdm - ok
16:20:27.0246 2700 StarOpen (306521935042fc0a6988d528643619b3) C:\WINDOWS\system32\drivers\StarOpen.sys
16:20:27.0246 2700 StarOpen - ok
16:20:27.0340 2700 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
16:20:27.0340 2700 streamip - ok
16:20:27.0434 2700 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
16:20:27.0434 2700 swenum - ok
16:20:27.0559 2700 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
16:20:27.0574 2700 swmidi - ok
16:20:27.0637 2700 symc810 - ok
16:20:27.0699 2700 symc8xx - ok
16:20:27.0731 2700 sym_hi - ok
16:20:27.0762 2700 sym_u3 - ok
16:20:27.0824 2700 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
16:20:27.0840 2700 sysaudio - ok
16:20:27.0996 2700 Tcpip (90caff4b094573449a0872a0f919b178) C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:20:28.0027 2700 Tcpip - ok
16:20:28.0152 2700 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
16:20:28.0152 2700 TDPIPE - ok
16:20:28.0277 2700 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
16:20:28.0277 2700 TDTCP - ok
16:20:28.0356 2700 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
16:20:28.0356 2700 TermDD - ok
16:20:28.0449 2700 TosIde - ok
16:20:28.0606 2700 uagp35 (49c805d42d75eddc9b6a7130999c9054) C:\WINDOWS\system32\DRIVERS\uagp35.sys
16:20:28.0606 2700 uagp35 - ok
16:20:28.0684 2700 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
16:20:28.0684 2700 Udfs - ok
16:20:28.0793 2700 ultra - ok
16:20:28.0887 2700 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
16:20:28.0887 2700 Update - ok
16:20:29.0043 2700 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
16:20:29.0043 2700 USBAAPL - ok
16:20:29.0137 2700 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys
16:20:29.0152 2700 usbaudio - ok
16:20:29.0309 2700 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:20:29.0309 2700 usbccgp - ok
16:20:29.0387 2700 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:20:29.0387 2700 usbhub - ok
16:20:29.0574 2700 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:20:29.0590 2700 usbprint - ok
16:20:29.0668 2700 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:20:29.0668 2700 usbscan - ok
16:20:29.0824 2700 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:20:29.0840 2700 USBSTOR - ok
16:20:29.0902 2700 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:20:29.0902 2700 usbuhci - ok
16:20:30.0012 2700 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
16:20:30.0012 2700 VgaSave - ok
16:20:30.0137 2700 viagfx (949f86f5a8e493574bbb830c3d18e4a9) C:\WINDOWS\system32\DRIVERS\vtmini.sys
16:20:30.0137 2700 viagfx - ok
16:20:30.0293 2700 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
16:20:30.0293 2700 ViaIde - ok
16:20:30.0371 2700 VIAudio (df47d922e86f4c571d81221bfb5873b8) C:\WINDOWS\system32\drivers\vinyl97.sys
16:20:30.0387 2700 VIAudio - ok
16:20:30.0543 2700 VolSnap (313b1a0d5db26dfe1c34a6c13b2ce0a7) C:\WINDOWS\system32\drivers\VolSnap.sys
16:20:30.0559 2700 VolSnap - ok
16:20:30.0652 2700 vsdatant (0b3dd9381fb9d83bc9dce8cd2459b14d) C:\WINDOWS\system32\vsdatant.sys
16:20:30.0699 2700 vsdatant - ok
16:20:30.0856 2700 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:20:30.0856 2700 Wanarp - ok
16:20:30.0949 2700 wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
16:20:30.0949 2700 wanatw - ok
16:20:31.0012 2700 WDICA - ok
16:20:31.0106 2700 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
16:20:31.0106 2700 wdmaud - ok
16:20:31.0340 2700 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
16:20:31.0387 2700 WpdUsb - ok
16:20:31.0512 2700 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
16:20:31.0512 2700 WSTCODEC - ok
16:20:31.0606 2700 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:20:31.0606 2700 WudfPf - ok
16:20:31.0715 2700 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:20:31.0762 2700 WudfRd - ok
16:20:31.0856 2700 MBR (0x1B8) (f706119be697644a6515f3aadd9e9780) \Device\Harddisk0\DR0
16:20:31.0856 2700 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - infected
16:20:31.0856 2700 \Device\Harddisk0\DR0 - detected Rootkit.Win32.TDSS.tdl4 (0)
16:20:31.0871 2700 Boot (0x1200) (6179946b69c21672858d6af208864295) \Device\Harddisk0\DR0\Partition0
16:20:31.0871 2700 \Device\Harddisk0\DR0\Partition0 - ok
16:20:31.0887 2700 ============================================================
16:20:31.0887 2700 Scan finished
16:20:31.0887 2700 ============================================================
16:20:31.0902 0612 Detected object count: 3
16:20:31.0918 0612 Actual detected object count: 3
16:20:43.0684 0612 dtscsi ( LockedFile.Multi.Generic ) - skipped by user
16:20:43.0684 0612 dtscsi ( LockedFile.Multi.Generic ) - User select action: Skip
16:20:43.0684 0612 sptd ( LockedFile.Multi.Generic ) - skipped by user
16:20:43.0684 0612 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
16:20:43.0715 0612 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - will be cured on reboot
16:20:43.0715 0612 \Device\Harddisk0\DR0 - ok
16:20:43.0715 0612 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - User select action: Cure
16:21:34.0746 3080 Deinitialize success
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 21
Fish66 Messages postés 17505 Date d'inscription dimanche 24 juillet 2011 Statut Contributeur sécurité Dernière intervention 16 juin 2021 1 318
14 déc. 2011 à 16:38
RE,

Redémarre ton PC et lance stp TDSSKiller pour vérification!

@+
0
Réponse 6 / 21
jalilouz
14 déc. 2011 à 19:30
oh super c est gentil de m'avoir guidé il me semble qu il y a plus de soucis.
un grand merci
0
Réponse 7 / 21
Fish66 Messages postés 17505 Date d'inscription dimanche 24 juillet 2011 Statut Contributeur sécurité Dernière intervention 16 juin 2021 1 318
Modifié par Fish66 le 14/12/2011 à 19:40
Re,

De rien :-)

On n'a pas terminé, poste stp le rapport ZHPDiag pour continuer la

désinfection de ton PC

@+

_ _ _ Fish66_ _ _ I''"""""I_ _ membre _ _I''"""""I_ _ contributeur sécurité_ _ _
¤¤¤ Le meilleur remède pour tous les problèmes, c'est la patience.... ¤¤¤
0
Réponse 8 / 21
jalilouz
14 déc. 2011 à 20:11
oups désolé

19:21:46.0593 2596 TDSS rootkit removing tool 2.6.23.0 Dec 13 2011 10:39:31
19:21:46.0625 2596 ============================================================
19:21:46.0625 2596 Current date / time: 2011/12/14 19:21:46.0625
19:21:46.0625 2596 SystemInfo:
19:21:46.0625 2596
19:21:46.0625 2596 OS Version: 5.1.2600 ServicePack: 2.0
19:21:46.0625 2596 Product type: Workstation
19:21:46.0625 2596 ComputerName: JULIE-QZFCRDUV2
19:21:46.0625 2596 UserName: julie
19:21:46.0625 2596 Windows directory: C:\WINDOWS
19:21:46.0625 2596 System windows directory: C:\WINDOWS
19:21:46.0625 2596 Processor architecture: Intel x86
19:21:46.0625 2596 Number of processors: 1
19:21:46.0625 2596 Page size: 0x1000
19:21:46.0625 2596 Boot type: Normal boot
19:21:46.0625 2596 ============================================================
19:21:48.0078 2596 Initialize success
19:22:00.0531 0208 ============================================================
19:22:00.0531 0208 Scan started
19:22:00.0531 0208 Mode: Manual;
19:22:00.0531 0208 ============================================================
19:22:02.0343 0208 Abiosdsk - ok
19:22:02.0375 0208 abp480n5 - ok
19:22:02.0500 0208 ACPI (0bd94fbfc14ea3606cd6ca4c0255baa3) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:22:02.0515 0208 ACPI - ok
19:22:02.0640 0208 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:22:02.0687 0208 ACPIEC - ok
19:22:02.0843 0208 adpu160m - ok
19:22:02.0968 0208 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
19:22:03.0015 0208 aec - ok
19:22:03.0109 0208 AFD (5ac495f4cb807b2b98ad2ad591e6d92e) C:\WINDOWS\System32\drivers\afd.sys
19:22:03.0125 0208 AFD - ok
19:22:03.0281 0208 AFS2K (b34b1ab0a7690a0e2301fec6d17b2fc1) C:\WINDOWS\system32\drivers\AFS2K.sys
19:22:03.0296 0208 AFS2K - ok
19:22:03.0484 0208 AgereSoftModem (593aefc67283d409f34cc1245d00a509) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
19:22:03.0609 0208 AgereSoftModem - ok
19:22:03.0718 0208 Aha154x - ok
19:22:03.0750 0208 aic78u2 - ok
19:22:03.0812 0208 aic78xx - ok
19:22:03.0890 0208 alcan5ln (e8a3f72f644c0b57f8ab894d04b289d7) C:\WINDOWS\system32\DRIVERS\alcan5ln.sys
19:22:03.0890 0208 alcan5ln - ok
19:22:04.0015 0208 alcaudsl (4c9577888c53243e2991456f510488a1) C:\WINDOWS\system32\DRIVERS\alcaudsl.sys
19:22:04.0031 0208 alcaudsl - ok
19:22:04.0093 0208 AliIde - ok
19:22:04.0203 0208 AmdK7 (c0f59933070392e662b3c2bb2be77955) C:\WINDOWS\system32\DRIVERS\amdk7.sys
19:22:04.0218 0208 AmdK7 - ok
19:22:04.0359 0208 amsint - ok
19:22:04.0500 0208 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
19:22:04.0500 0208 Arp1394 - ok
19:22:04.0562 0208 asc - ok
19:22:04.0640 0208 asc3350p - ok
19:22:04.0671 0208 asc3550 - ok
19:22:04.0796 0208 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:22:04.0812 0208 AsyncMac - ok
19:22:04.0937 0208 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:22:04.0937 0208 atapi - ok
19:22:05.0000 0208 Atdisk - ok
19:22:05.0093 0208 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:22:05.0109 0208 Atmarpc - ok
19:22:05.0328 0208 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:22:05.0359 0208 audstub - ok
19:22:05.0453 0208 avgio (afa456a6210abe5798561a5758517340) C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys
19:22:05.0468 0208 avgio - ok
19:22:05.0546 0208 avgntflt (906f73c4f6b8ba5daabc41a1f04cecfe) C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys
19:22:05.0562 0208 avgntflt - ok
19:22:05.0687 0208 avipbb (bdb37b3b217f5181a5bc129c50844f98) C:\WINDOWS\system32\DRIVERS\avipbb.sys
19:22:05.0703 0208 avipbb - ok
19:22:05.0828 0208 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:22:05.0828 0208 Beep - ok
19:22:05.0937 0208 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:22:05.0953 0208 cbidf2k - ok
19:22:06.0078 0208 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:22:06.0093 0208 CCDECODE - ok
19:22:06.0156 0208 cd20xrnt - ok
19:22:06.0328 0208 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:22:06.0343 0208 Cdaudio - ok
19:22:06.0421 0208 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
19:22:06.0437 0208 Cdfs - ok
19:22:06.0531 0208 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:22:06.0531 0208 Cdrom - ok
19:22:06.0609 0208 Changer - ok
19:22:06.0703 0208 CmdIde - ok
19:22:06.0765 0208 Cpqarray - ok
19:22:06.0796 0208 dac2w2k - ok
19:22:06.0828 0208 dac960nt - ok
19:22:06.0921 0208 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
19:22:06.0921 0208 Disk - ok
19:22:07.0078 0208 dmboot (e2d3b7620310fe56685f9b15a6b404b3) C:\WINDOWS\system32\drivers\dmboot.sys
19:22:07.0140 0208 dmboot - ok
19:22:07.0328 0208 dmio (c77f5c20aa70197a69aa84baa9de43c8) C:\WINDOWS\system32\drivers\dmio.sys
19:22:07.0343 0208 dmio - ok
19:22:07.0453 0208 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:22:07.0453 0208 dmload - ok
19:22:07.0562 0208 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
19:22:07.0578 0208 DMusic - ok
19:22:07.0671 0208 dpti2o - ok
19:22:07.0765 0208 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
19:22:07.0765 0208 drmkaud - ok
19:22:07.0906 0208 dtscsi (6461e57bb51a848aae26f52427b7cf9e) C:\WINDOWS\System32\Drivers\dtscsi.sys
19:22:07.0906 0208 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\dtscsi.sys. md5: 6461e57bb51a848aae26f52427b7cf9e
19:22:07.0906 0208 dtscsi ( LockedFile.Multi.Generic ) - warning
19:22:07.0906 0208 dtscsi - detected LockedFile.Multi.Generic (1)
19:22:08.0000 0208 ejlysu - ok
19:22:08.0171 0208 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
19:22:08.0187 0208 Fastfat - ok
19:22:08.0359 0208 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
19:22:08.0375 0208 Fdc - ok
19:22:08.0468 0208 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
19:22:08.0484 0208 FETNDIS - ok
19:22:08.0625 0208 Fips (8b121ff880683607ab2aef0340721718) C:\WINDOWS\system32\drivers\Fips.sys
19:22:08.0640 0208 Fips - ok
19:22:08.0718 0208 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:22:08.0734 0208 Flpydisk - ok
19:22:08.0828 0208 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\drivers\fltmgr.sys
19:22:08.0843 0208 FltMgr - ok
19:22:09.0000 0208 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:22:09.0000 0208 Fs_Rec - ok
19:22:09.0125 0208 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:22:09.0140 0208 Ftdisk - ok
19:22:09.0312 0208 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:22:09.0343 0208 GEARAspiWDM - ok
19:22:09.0562 0208 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:22:09.0578 0208 Gpc - ok
19:22:09.0921 0208 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:22:09.0953 0208 HidUsb - ok
19:22:10.0140 0208 hpn - ok
19:22:10.0359 0208 hpt3xx - ok
19:22:10.0671 0208 HPZid412 (863cc3a82c63c9f60acf2e85d5310620) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:22:10.0687 0208 HPZid412 - ok
19:22:10.0968 0208 HPZipr12 (08cb72e95dd75b61f2966b311d0e4366) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:22:10.0984 0208 HPZipr12 - ok
19:22:11.0312 0208 HPZius12 (ca990306ed4ef732af9695bff24fc96f) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:22:11.0343 0208 HPZius12 - ok
19:22:11.0625 0208 HTTP (cb77bb47e67e84deb17ba29632501730) C:\WINDOWS\system32\Drivers\HTTP.sys
19:22:12.0000 0208 HTTP - ok
19:22:12.0234 0208 i2omgmt - ok
19:22:12.0546 0208 i2omp - ok
19:22:12.0640 0208 i8042prt (d1efcbd693b5ba21314d06368c471070) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:22:12.0656 0208 i8042prt - ok
19:22:12.0812 0208 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:22:12.0812 0208 Imapi - ok
19:22:12.0906 0208 ini910u - ok
19:22:12.0984 0208 IntelIde - ok
19:22:13.0046 0208 ip6fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\drivers\ip6fw.sys
19:22:13.0062 0208 ip6fw - ok
19:22:13.0171 0208 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:22:13.0187 0208 IpFilterDriver - ok
19:22:13.0375 0208 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:22:13.0390 0208 IpInIp - ok
19:22:13.0500 0208 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:22:13.0515 0208 IpNat - ok
19:22:13.0656 0208 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:22:13.0671 0208 IPSec - ok
19:22:13.0750 0208 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:22:13.0765 0208 IRENUM - ok
19:22:13.0859 0208 isapnp (54632f1a7de61dc3615d756f2a90fa72) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:22:13.0875 0208 isapnp - ok
19:22:14.0015 0208 Kbdclass (e798705e8dc7fab596ef6bfdf167e007) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:22:14.0015 0208 Kbdclass - ok
19:22:14.0109 0208 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
19:22:14.0140 0208 kmixer - ok
19:22:14.0296 0208 KSecDD (eb7ffe87fd367ea8fca0506f74a87fbb) C:\WINDOWS\system32\drivers\KSecDD.sys
19:22:14.0312 0208 KSecDD - ok
19:22:14.0406 0208 lbrtfdc - ok
19:22:14.0515 0208 LVUSBSta (82bc937f40b644ed7f04d81f138a0322) C:\WINDOWS\system32\drivers\lvusbsta.sys
19:22:14.0531 0208 LVUSBSta - ok
19:22:14.0609 0208 MBAMSwissArmy - ok
19:22:14.0703 0208 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:22:14.0718 0208 mnmdd - ok
19:22:14.0843 0208 Modem (5ac7e16f5b40a6da14b5f2b3ada4693e) C:\WINDOWS\system32\drivers\Modem.sys
19:22:14.0843 0208 Modem - ok
19:22:14.0906 0208 Mouclass (7d4f19411bd941e1d432a99e24230386) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:22:14.0906 0208 Mouclass - ok
19:22:15.0031 0208 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:22:15.0031 0208 mouhid - ok
19:22:15.0140 0208 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
19:22:15.0156 0208 MountMgr - ok
19:22:15.0281 0208 mraid35x - ok
19:22:15.0359 0208 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:22:15.0375 0208 MRxDAV - ok
19:22:15.0531 0208 MRxSmb (025af03ce51645c62f3b6907a7e2be5e) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:22:15.0593 0208 MRxSmb - ok
19:22:15.0734 0208 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
19:22:15.0734 0208 Msfs - ok
19:22:15.0843 0208 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:22:15.0859 0208 MSKSSRV - ok
19:22:15.0984 0208 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:22:16.0000 0208 MSPCLOCK - ok
19:22:16.0078 0208 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
19:22:16.0078 0208 MSPQM - ok
19:22:16.0187 0208 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:22:16.0203 0208 mssmbios - ok
19:22:16.0343 0208 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
19:22:16.0343 0208 MSTEE - ok
19:22:16.0453 0208 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
19:22:16.0468 0208 Mup - ok
19:22:16.0593 0208 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:22:16.0609 0208 NABTSFEC - ok
19:22:16.0750 0208 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
19:22:16.0781 0208 NDIS - ok
19:22:16.0906 0208 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:22:16.0921 0208 NdisIP - ok
19:22:17.0015 0208 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:22:17.0015 0208 NdisTapi - ok
19:22:17.0156 0208 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:22:17.0156 0208 Ndisuio - ok
19:22:17.0203 0208 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:22:17.0218 0208 NdisWan - ok
19:22:17.0343 0208 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
19:22:17.0359 0208 NDProxy - ok
19:22:17.0484 0208 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:22:17.0500 0208 NetBIOS - ok
19:22:17.0656 0208 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:22:17.0687 0208 NetBT - ok
19:22:17.0812 0208 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
19:22:17.0812 0208 NIC1394 - ok
19:22:17.0953 0208 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
19:22:17.0953 0208 Npfs - ok
19:22:18.0125 0208 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
19:22:18.0171 0208 Ntfs - ok
19:22:18.0343 0208 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:22:18.0343 0208 Null - ok
19:22:18.0421 0208 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:22:18.0437 0208 NwlnkFlt - ok
19:22:18.0546 0208 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:22:18.0546 0208 NwlnkFwd - ok
19:22:18.0640 0208 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
19:22:18.0671 0208 ohci1394 - ok
19:22:18.0953 0208 Parport (318696359ac7df48d1e51974ec527dd2) C:\WINDOWS\system32\DRIVERS\parport.sys
19:22:18.0968 0208 Parport - ok
19:22:19.0062 0208 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
19:22:19.0062 0208 PartMgr - ok
19:22:19.0187 0208 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
19:22:19.0187 0208 ParVdm - ok
19:22:19.0406 0208 PCI (7c5da5c1ed801ad8b0309d5514f0b75e) C:\WINDOWS\system32\DRIVERS\pci.sys
19:22:19.0406 0208 PCI - ok
19:22:19.0484 0208 PCIDump - ok
19:22:19.0578 0208 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
19:22:19.0593 0208 PCIIde - ok
19:22:19.0796 0208 Pcmcia (641da274e163617ea7a33506bc6da8e3) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:22:19.0812 0208 Pcmcia - ok
19:22:19.0859 0208 PDCOMP - ok
19:22:19.0937 0208 PDFRAME - ok
19:22:20.0015 0208 PDRELI - ok
19:22:20.0046 0208 PDRFRAME - ok
19:22:20.0109 0208 pepifilter (ad70e30a2e7ea1bde8c42a4f50feaeda) C:\WINDOWS\system32\DRIVERS\lv302af.sys
19:22:20.0109 0208 pepifilter - ok
19:22:20.0187 0208 perc2 - ok
19:22:20.0234 0208 perc2hib - ok
19:22:20.0421 0208 PID_08A0 (a614ea2995ced201217a58e18a7474ad) C:\WINDOWS\system32\DRIVERS\LV302AV.SYS
19:22:20.0484 0208 PID_08A0 - ok
19:22:20.0609 0208 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:22:20.0625 0208 PptpMiniport - ok
19:22:20.0718 0208 Processor (f480712b761e538bc8e44ede60f3a3c3) C:\WINDOWS\system32\DRIVERS\processr.sys
19:22:20.0718 0208 Processor - ok
19:22:20.0828 0208 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
19:22:20.0843 0208 PSched - ok
19:22:20.0953 0208 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:22:20.0968 0208 Ptilink - ok
19:22:21.0078 0208 PxHelp20 (81088114178112618b1c414a65e50f7c) C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:22:21.0093 0208 PxHelp20 - ok
19:22:21.0187 0208 ql1080 - ok
19:22:21.0218 0208 Ql10wnt - ok
19:22:21.0375 0208 ql12160 - ok
19:22:21.0406 0208 ql1240 - ok
19:22:21.0437 0208 ql1280 - ok
19:22:21.0484 0208 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:22:21.0500 0208 RasAcd - ok
19:22:21.0640 0208 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:22:21.0656 0208 Rasl2tp - ok
19:22:21.0781 0208 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:22:21.0796 0208 RasPppoe - ok
19:22:21.0937 0208 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:22:21.0937 0208 Raspti - ok
19:22:22.0031 0208 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:22:22.0046 0208 Rdbss - ok
19:22:22.0187 0208 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:22:22.0203 0208 RDPCDD - ok
19:22:22.0406 0208 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:22:22.0437 0208 rdpdr - ok
19:22:22.0546 0208 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
19:22:22.0562 0208 RDPWD - ok
19:22:22.0687 0208 redbook (2cc30b68dd62b73d444a41322cd7fc4c) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:22:22.0687 0208 redbook - ok
19:22:22.0859 0208 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:22:22.0875 0208 Secdrv - ok
19:22:22.0984 0208 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:22:22.0984 0208 serenum - ok
19:22:23.0093 0208 Serial (653201755ca96ab4aaa4131daf6da356) C:\WINDOWS\system32\DRIVERS\serial.sys
19:22:23.0109 0208 Serial - ok
19:22:23.0218 0208 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:22:23.0218 0208 Sfloppy - ok
19:22:23.0343 0208 Simbad - ok
19:22:23.0421 0208 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:22:23.0421 0208 SLIP - ok
19:22:23.0515 0208 Sparrow - ok
19:22:23.0578 0208 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
19:22:23.0593 0208 splitter - ok
19:22:23.0750 0208 sptd (3ec8c68408ff6ab09f25abb02154f2c7) C:\WINDOWS\system32\Drivers\sptd.sys
19:22:23.0750 0208 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 3ec8c68408ff6ab09f25abb02154f2c7
19:22:23.0765 0208 sptd ( LockedFile.Multi.Generic ) - warning
19:22:23.0765 0208 sptd - detected LockedFile.Multi.Generic (1)
19:22:23.0890 0208 sr (b52181023b827acda36c1b76751ebffd) C:\WINDOWS\system32\DRIVERS\sr.sys
19:22:23.0906 0208 sr - ok
19:22:24.0046 0208 srescan (bda0ecc7cba1d3b9fd7ff2881bf9b463) C:\WINDOWS\system32\ZoneLabs\srescan.sys
19:22:24.0062 0208 srescan - ok
19:22:24.0203 0208 Srv (ea554a3ffc3f536fe8320eb38f5e4843) C:\WINDOWS\system32\DRIVERS\srv.sys
19:22:24.0250 0208 Srv - ok
19:22:24.0390 0208 ssmdrv (3d2829fde1c52fc64da5413889ce4dee) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
19:22:24.0406 0208 ssmdrv - ok
19:22:24.0515 0208 ssm_bus (df5c19f053eff7f8ba25d73aea899656) C:\WINDOWS\system32\DRIVERS\ssm_bus.sys
19:22:24.0515 0208 ssm_bus - ok
19:22:24.0671 0208 ssm_mdfl (5347169fa449eabc4d0728ae39fab926) C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys
19:22:24.0671 0208 ssm_mdfl - ok
19:22:24.0765 0208 ssm_mdm (7aae23dd105eed15c4f45fc269fa42a9) C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys
19:22:24.0781 0208 ssm_mdm - ok
19:22:24.0906 0208 ss_bus (bd15182e9d2d3fabc1d1313badbd2415) C:\WINDOWS\system32\DRIVERS\ss_bus.sys
19:22:24.0921 0208 ss_bus - ok
19:22:25.0046 0208 ss_mdfl (67d1144f249a3c5e03ebd7a2304dee11) C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys
19:22:25.0046 0208 ss_mdfl - ok
19:22:25.0140 0208 ss_mdm (954b7ce2d54c703d6a8471d6b05a5e13) C:\WINDOWS\system32\DRIVERS\ss_mdm.sys
19:22:25.0156 0208 ss_mdm - ok
19:22:25.0296 0208 StarOpen (306521935042fc0a6988d528643619b3) C:\WINDOWS\system32\drivers\StarOpen.sys
19:22:25.0296 0208 StarOpen - ok
19:22:25.0406 0208 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:22:25.0421 0208 streamip - ok
19:22:25.0531 0208 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:22:25.0546 0208 swenum - ok
19:22:25.0640 0208 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
19:22:25.0640 0208 swmidi - ok
19:22:25.0750 0208 symc810 - ok
19:22:25.0796 0208 symc8xx - ok
19:22:25.0828 0208 sym_hi - ok
19:22:25.0859 0208 sym_u3 - ok
19:22:25.0937 0208 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
19:22:25.0937 0208 sysaudio - ok
19:22:26.0093 0208 Tcpip (90caff4b094573449a0872a0f919b178) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:22:26.0140 0208 Tcpip - ok
19:22:26.0296 0208 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:22:26.0312 0208 TDPIPE - ok
19:22:26.0390 0208 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
19:22:26.0406 0208 TDTCP - ok
19:22:26.0531 0208 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:22:26.0546 0208 TermDD - ok
19:22:26.0671 0208 TosIde - ok
19:22:26.0796 0208 uagp35 (49c805d42d75eddc9b6a7130999c9054) C:\WINDOWS\system32\DRIVERS\uagp35.sys
19:22:26.0812 0208 uagp35 - ok
19:22:26.0906 0208 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
19:22:26.0921 0208 Udfs - ok
19:22:26.0984 0208 ultra - ok
19:22:27.0125 0208 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
19:22:27.0156 0208 Update - ok
19:22:27.0250 0208 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
19:22:27.0265 0208 USBAAPL - ok
19:22:27.0421 0208 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys
19:22:27.0437 0208 usbaudio - ok
19:22:27.0515 0208 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:22:27.0531 0208 usbccgp - ok
19:22:27.0640 0208 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:22:27.0640 0208 usbhub - ok
19:22:27.0781 0208 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:22:27.0781 0208 usbprint - ok
19:22:27.0906 0208 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:22:27.0906 0208 usbscan - ok
19:22:28.0015 0208 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:22:28.0015 0208 USBSTOR - ok
19:22:28.0109 0208 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:22:28.0125 0208 usbuhci - ok
19:22:28.0250 0208 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
19:22:28.0265 0208 VgaSave - ok
19:22:28.0453 0208 viagfx (949f86f5a8e493574bbb830c3d18e4a9) C:\WINDOWS\system32\DRIVERS\vtmini.sys
19:22:28.0468 0208 viagfx - ok
19:22:28.0578 0208 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
19:22:28.0593 0208 ViaIde - ok
19:22:28.0718 0208 VIAudio (df47d922e86f4c571d81221bfb5873b8) C:\WINDOWS\system32\drivers\vinyl97.sys
19:22:28.0750 0208 VIAudio - ok
19:22:28.0859 0208 VolSnap (313b1a0d5db26dfe1c34a6c13b2ce0a7) C:\WINDOWS\system32\drivers\VolSnap.sys
19:22:28.0875 0208 VolSnap - ok
19:22:28.0968 0208 vsdatant (0b3dd9381fb9d83bc9dce8cd2459b14d) C:\WINDOWS\system32\vsdatant.sys
19:22:29.0031 0208 vsdatant - ok
19:22:29.0171 0208 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:22:29.0171 0208 Wanarp - ok
19:22:29.0265 0208 wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
19:22:29.0281 0208 wanatw - ok
19:22:29.0390 0208 WDICA - ok
19:22:29.0515 0208 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
19:22:29.0531 0208 wdmaud - ok
19:22:29.0765 0208 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:22:29.0781 0208 WpdUsb - ok
19:22:29.0875 0208 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:22:29.0875 0208 WSTCODEC - ok
19:22:30.0000 0208 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:22:30.0015 0208 WudfPf - ok
19:22:30.0140 0208 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:22:30.0156 0208 WudfRd - ok
19:22:30.0281 0208 MBR (0x1B8) (c99c3199cfaa4cbdcd91493f6d113a50) \Device\Harddisk0\DR0
19:22:30.0437 0208 \Device\Harddisk0\DR0 - ok
19:22:30.0468 0208 Boot (0x1200) (6179946b69c21672858d6af208864295) \Device\Harddisk0\DR0\Partition0
19:22:30.0468 0208 \Device\Harddisk0\DR0\Partition0 - ok
19:22:30.0468 0208 ============================================================
19:22:30.0468 0208 Scan finished
19:22:30.0468 0208 ============================================================
19:22:30.0500 0256 Detected object count: 2
19:22:30.0500 0256 Actual detected object count: 2
19:23:34.0281 0256 dtscsi ( LockedFile.Multi.Generic ) - skipped by user
19:23:34.0281 0256 dtscsi ( LockedFile.Multi.Generic ) - User select action: Skip
19:23:34.0281 0256 sptd ( LockedFile.Multi.Generic ) - skipped by user
19:23:34.0281 0256 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
19:23:37.0828 2736 Deinitialize success
0
Réponse 9 / 21
Fish66 Messages postés 17505 Date d'inscription dimanche 24 juillet 2011 Statut Contributeur sécurité Dernière intervention 16 juin 2021 1 318
14 déc. 2011 à 20:26
Re,

Manque rapport ZHPDiag..

@+
0
Réponse 10 / 21
jalilouz
14 déc. 2011 à 20:45
http://www.toofiles.com/fr/oip/documents/ZHPDiag1/zhpdiag.html

voici le lien
0
Réponse 11 / 21
jalilouz
14 déc. 2011 à 20:57
http://www.toofiles.com/fr/oip/documents/txt/2783_zhpdiag.html


je pense que ce lien marchera mieu désolé je ne suis pas douée
0
Réponse 12 / 21
Fish66 Messages postés 17505 Date d'inscription dimanche 24 juillet 2011 Statut Contributeur sécurité Dernière intervention 16 juin 2021 1 318
14 déc. 2011 à 21:23
Re,

Ton PC est bien infecté!

1/
* Télécharge sur le bureau RogueKiller (par tigzy)
https://www.luanagames.com/index.fr.html


*( Sous Vista/Seven,clique droit, lancer en tant qu'administrateur )

* Quitte tous tes programmes en cours
* Lance RogueKiller.exe.
* Lorsque demandé, tape 1 et valide
*Si le rogue empêche le lancement du programme, Renomme (RogueKiller) en "winlogon" ou "firefox". Sinon renomme le en winlogon.exe ou firefox.exe (rajouter l'extension .exe)
* Un rapport (RKreport.txt) a du se créer à côté de l'exécutable, colle son contenu dans la réponse
* Si le programme a été bloqué, ne pas hésiter a essayer plusieurs fois.

2/
Télécharge AdwCleaner (merci à Xplode)
Lance AdwCleaner
Clique sur le bouton [ Suppression ]
Patiente...
Poste le rapport qui apparait en fin de recherche.
Il se trouve également à C:\AdwCleaner[SX] (où X est un chiffre)

3/
* Télécharge de AD-Remover sur ton Bureau.
http://www.teamxscript.org/adremoverTelechargement.html

/!\ Ferme toutes applications en cours /!\

- Double sur l'icône Ad-remover située sur ton Bureau.
-Pour vista/Seven : clique avec le bouton droit de la souris et choisis « exécuter en tant qu'administrateur »
- Sur la page, clique sur le bouton « Nettoyer »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour c

A demain

Bonne nuit


0
Réponse 13 / 21
jalilouz
14 déc. 2011 à 23:21
RogueKiller V6.2.0 [12/12/2011] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 2) 32 bits version
Demarrage : Mode normal
Utilisateur: julie [Droits d'admin]
Mode: Recherche -- Date : 14/12/2011 21:38:55

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 2 ¤¤¤
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[FILEASSO] HKLM\[...]Software\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command : ("C:\DOCUME~1\julie\LOCALS~1\Temp\9b88.exe" -a "C:\Program Files\Internet Explorer\iexplore.exe") -> FOUND

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
[FOLDER] plugs : c:\documents and settings\julie\application data\adobe\plugs --> FOUND

¤¤¤ Driver: [LOADED] ¤¤¤

¤¤¤ Infection : Rogue.AntiSpy-AH ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
127.0.0.1 www.8minutedating.com
127.0.0.1 whysohardx.com
127.0.0.1 protectyourpc-11.com
127.0.0.1 checkserverstatux.com
127.0.0.1 xinmin.cn
127.0.0.1 xy95.cn
127.0.0.1 koralda.com
127.0.0.1 weirden.com
127.0.0.1 nanocloudcontroller.com
127.0.0.1 coo0lnet.net


¤¤¤ MBR Verif: ¤¤¤
--- User ---
[MBR] 7018bdc51bc3beb60bf7005521aaa198
[BSP] 7047ae93fffb1a8375e9e5cdfb81a4bd : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 63 | Size: 80015 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[1].txt >>
RKreport[1].txt
0
Réponse 14 / 21
jalilouz
14 déc. 2011 à 23:24
http://www.terafiles.net/v-124721.html
0
Réponse 15 / 21
jalilouz
14 déc. 2011 à 23:26
http://www.terafiles.net/v-124723.html
0
Réponse 16 / 21
jalilouz
14 déc. 2011 à 23:26
voila j espere que j ai tout bien fait je vous remercie bonne nuit a demain
0
Réponse 17 / 21
Fish66 Messages postés 17505 Date d'inscription dimanche 24 juillet 2011 Statut Contributeur sécurité Dernière intervention 16 juin 2021 1 318
15 déc. 2011 à 05:50
Re,
1/
Relance RogueKiller puis tapes 2 ensuite 3 et poste les rapports correspondants à ces 2 options

2/
* Lance Malwarebytes' Anti-Malware
* Fais la mise à jour
* Clique dans l'onglet "Recherche"
* Coche l'option "Exécuter un examen complet" puis sur le bouton "Rechercher"
* Choisis de scanner tous tes disques durs, puis clique sur 'Lancer l'examen"

A la fin de l'analyse, si MBAM n'a rien trouvé :

* Clique sur OK, le rapport s'ouvre spontanément

Si des menaces ont été détectées :

* Clique sur OK puis "Afficher les résultats"
*Vérifie que toutes les lignes sont cochées
* Choisis l'option "Supprimer la sélection"
* Si MBAM demande le redémarrage de Windows : Clique sur "Oui"
* Le rapport s'ouvre automatiquement après la suppression, il se trouve aussi dans l'onglet "Rapports/Logs"

* Copie/colle le rapport dans le prochain message


Remarque :
- S'il y'a un problème de mise à jour de mbam, tu peux la faire manuellement en téléchargeant ce fichier puis en l'exécutant.

@+
0
Réponse 18 / 21
jalilouz
16 déc. 2011 à 01:13
bonjour désolé j ai eu une coupure de courant aujourd hui de 11h à 18h dc pas eu le temps de faire ce que vous m'avez demandé...je lance l analyse malware cette nuit je vous envoie tout demain. merci bonne nuit a demain
0
Réponse 19 / 21
jalilouz
16 déc. 2011 à 18:41
RogueKiller V6.2.0 [12/12/2011] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 2) 32 bits version
Demarrage : Mode normal
Utilisateur: julie [Droits d'admin]
Mode: Suppression -- Date : 15/12/2011 18:10:40

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 2 ¤¤¤
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[FILEASSO] HKLM\[...]Software\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command : ("C:\DOCUME~1\julie\LOCALS~1\Temp\9b88.exe" -a "C:\Program Files\Internet Explorer\iexplore.exe") -> REPLACED ("C:\Program Files\internet explorer\iexplore.exe")

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
[FOLDER] plugs : c:\documents and settings\julie\application data\adobe\plugs --> REMOVED

¤¤¤ Driver: [LOADED] ¤¤¤

¤¤¤ Infection : Rogue.AntiSpy-AH ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
127.0.0.1 www.8minutedating.com
127.0.0.1 whysohardx.com
127.0.0.1 protectyourpc-11.com
127.0.0.1 checkserverstatux.com
127.0.0.1 xinmin.cn
127.0.0.1 xy95.cn
127.0.0.1 koralda.com
127.0.0.1 weirden.com
127.0.0.1 nanocloudcontroller.com
127.0.0.1 coo0lnet.net


¤¤¤ MBR Verif: ¤¤¤
--- User ---
[MBR] 7018bdc51bc3beb60bf7005521aaa198
[BSP] 7047ae93fffb1a8375e9e5cdfb81a4bd : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 63 | Size: 80015 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[1].txt >>
RKreport[1].txt
0
Réponse 20 / 21
jalilouz
16 déc. 2011 à 18:42
RogueKiller V6.2.0 [12/12/2011] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 2) 32 bits version
Demarrage : Mode normal
Utilisateur: julie [Droits d'admin]
Mode: HOSTS RAZ -- Date : 15/12/2011 18:11:08

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Driver: [LOADED] ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost
127.0.0.1 www.8minutedating.com
127.0.0.1 whysohardx.com
127.0.0.1 protectyourpc-11.com
127.0.0.1 checkserverstatux.com
127.0.0.1 xinmin.cn
127.0.0.1 xy95.cn
127.0.0.1 koralda.com
127.0.0.1 weirden.com
127.0.0.1 nanocloudcontroller.com
127.0.0.1 coo0lnet.net


¤¤¤ Nouveau fichier HOSTS: ¤¤¤
127.0.0.1 localhost

Termine : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt
0

Discussions similaires

Site Easywifi.config inaccessible /
Charly -
Repeteurwifi -

8 réponses
192.168.49.1
4Pedro -
hopelan -

1 réponse
Configuration répéteur Wifi
Squall -
Squall -

4 réponses
Impossible de se connecter a 192.168.1.1
papemane -
Quels -

5 réponses
panne zimbra free erreur 413
gmartin -
saucisson_galactique -

7 réponses